logo

Database

Asymmetric denial of service In magick.net-q16-openmp-x64

Description

A flaw was found in ImageMagick. A remote attacker could exploit a NULL pointer dereference vulnerability in the Magick Scripting Language (MSL) parser. This occurs when processing tags before images are loaded. Successful exploitation can lead to a Denial of Service (DoS) attack, making the software unavailable.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

1-10 of 25

10

Aliases

1. CVE-2026-239522. NVD-2026-239523. OSV-2026-239524. OSV-DEBIAN-2026-239525. GHSA-5vx3-wx4q-6cj86. GCVE-2026-239527. SECURITY-TRACKER-CVE-2026-23952

References

1. https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-5vx3-wx4q-6cj82. https://github.com/dlemstra/Magick.NET/releases/tag/14.10.2

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.